Topics

Since updating to dev 18.7.a_264 (amd64/LibreSSL) I am experiencing sudden crashes and core dumps are empty (very strange) .

All instances begin with "nm_txsync_prologue em1 TX0 kring error:"

Any ides what does this?

Edit: em1 = WAN

Is there a way to select multiple rules and change them all, as a group, from Alert to Drop without having to change them one at a time? Such as, there are 302 netbios rules I want to change to drop. That will take an hour or more to do manually. Likewise with our groupings; malware, OSX, etc.

In 18.1.b_273 there is no longer a "Dynamic View" that can block or pass an address on the fly. Plus all the rules, except for the anti-lockout say, "let out anything from firewall host itself"

Standard distribution of the ET and Snort VRT suricata rules is set up to support Windows based systems. While trying to deselect the Windows rules the following a fatal error abruptly occurred. See attached GUI Screen Print for details.

I am currently reinstalling and upgrading. The system fatal was unrecoverable.

Shortly after startup, restart or service bounces I get a HBSD SEGVGUARD error as follows:

[HBSD SEGVGUARD] [filterdns (14248)] Supension expired -> pid: 14248 ppid: p_pax: 0x50<SEGVGUARD, ASLR>

Though I have not discoveed any obvious operational problems associated with this error it is consttant and repeatable.  (version i86 17.7.8) Any ideas or recommendations?

Edit: Please note the pid: ##### changes with each instance of the error.

Does the amd64 version work on 64bit i86 systems?